Kaiser Permanente
Cyber Risk Defense Consultant V - Splunk Privacy Developer
Kaiser Permanente, Greenwood Village, Colorado, United States
Splunk Systems Administrator & Developer
Job Summary
Responsible for maintaining and administering servers and infrastructure supporting Kaiser Permanente's Security Information & Event Management platform. Duties include Splunk Enterprise administration, Unix administration, Splunk integration management/data onboarding, user provisioning, support of Splunk Universal Forwarders, and advanced analytics for cyber threat and clinical privacy detections.
Essential Responsibilities
Conduct business‑specific projects, promote adherence to procedures, develop work plans, coordinate resources, and influence completion of tasks.
Practice self‑leadership, communicate information, build relationships, provide feedback, mentor junior team members, and adapt to change.
Lead the team in proactive monitoring and response to threats against the KP network.
Communicate investigative findings to non‑technical audiences.
Plan and facilitate regular operations meetings with the Cyber Risk Defense Center (CRDC) teams.
Support closed‑loop processes on security efforts by providing feedback to TDA leads and/or leadership.
Participate in information fusion procedures: Use Case planning/development, quality assurance validation, and response procedure documentation.
Serve as liaison between stage teams and upper management, identifying issues, improvement areas, or security gaps and suggesting improvements.
Drive development of CRDC intellectual capital by leading process or procedure improvements, brown‑bag training, and new training documents.
Partner with CRDC Policy Engineers and Remediation teams to contain identified issues and determine the best approach to improve security posture.
Facilitate follow‑up remediation design and review efforts.
Lead investigation and triage of security events across multiple domains.
Lead complex data analyses in support of security event management processes, including root cause analysis.
Coordinate response and resolution of high‑impact or critical cyber‑security incidents.
Lead deployment of threat detection capabilities and incident response plans, which may include after‑hours support and coordination among responsible teams.
Drive execution of incident detection and handling processes, including containment, protection, and remediation activities.
Minimum Qualifications
Minimum two (2) years in an informal leadership role working with project or technical teams.
Bachelor’s degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and minimum eight (8) years experience in IT or a related field, including minimum two (2) years in information security or network engineering.
Seniority Level Mid‑Senior level
Employment Type Full‑time
Job Function Information Technology
Location Greenwood Village, CO
#J-18808-Ljbffr
Essential Responsibilities
Conduct business‑specific projects, promote adherence to procedures, develop work plans, coordinate resources, and influence completion of tasks.
Practice self‑leadership, communicate information, build relationships, provide feedback, mentor junior team members, and adapt to change.
Lead the team in proactive monitoring and response to threats against the KP network.
Communicate investigative findings to non‑technical audiences.
Plan and facilitate regular operations meetings with the Cyber Risk Defense Center (CRDC) teams.
Support closed‑loop processes on security efforts by providing feedback to TDA leads and/or leadership.
Participate in information fusion procedures: Use Case planning/development, quality assurance validation, and response procedure documentation.
Serve as liaison between stage teams and upper management, identifying issues, improvement areas, or security gaps and suggesting improvements.
Drive development of CRDC intellectual capital by leading process or procedure improvements, brown‑bag training, and new training documents.
Partner with CRDC Policy Engineers and Remediation teams to contain identified issues and determine the best approach to improve security posture.
Facilitate follow‑up remediation design and review efforts.
Lead investigation and triage of security events across multiple domains.
Lead complex data analyses in support of security event management processes, including root cause analysis.
Coordinate response and resolution of high‑impact or critical cyber‑security incidents.
Lead deployment of threat detection capabilities and incident response plans, which may include after‑hours support and coordination among responsible teams.
Drive execution of incident detection and handling processes, including containment, protection, and remediation activities.
Minimum Qualifications
Minimum two (2) years in an informal leadership role working with project or technical teams.
Bachelor’s degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and minimum eight (8) years experience in IT or a related field, including minimum two (2) years in information security or network engineering.
Seniority Level Mid‑Senior level
Employment Type Full‑time
Job Function Information Technology
Location Greenwood Village, CO
#J-18808-Ljbffr